Unix security additions
Dr. Richard Glass
reg at pinet.aip.org
Fri Apr 19 03:02:10 AEST 1991
I have missed most of this discssion, but if the drift is correct, I
believe its how do you have operators back up and restore without access
to the user files.
Several years ago I was a SA of a Univ. departmental Unix box. I had
student help assigned to me. I wanted the students to perform a backup
and restore, but not be able to read or write files. This was my
solution.
1) The tape dev was owned by root and rw by root only.
2) A program owned by root with set owner priv. was run by the
operators.
3) This program prompted them for files to restore and backup. The
appropreiate command was exec'ed to perform this operation.
4) The program ONLY allowed files to be restored to their orig.
directory.
If this helps, let me know.
Ricky Glass (reg at pinet.aip.org)
More information about the Comp.unix.internals
mailing list